docs: add quickstart, auth, errors, concepts, SDK pages, and Spanish core

[WomB0ComB0]

Summary

Expands the docs site from a thin landing page + auto-generated OpenAPI into a full developer onboarding flow.

New pages

• `quickstart` — 5-step authenticated-call walkthrough
• `authentication` — JWT lifecycle, header format, expiry handling, rotation
• `errors` — error envelope, full HTTP status table, retry decision matrix
• `concepts` — mesh networking, evidence/IPFS/Solana chain, HITL approval, operator scopes
• `sdks/{index,typescript,python,rust,dotnet}` — landing + per-language guides
• `es/{concepts,quickstart,authentication,errors}` — Spanish translations of the core flow

Existing pages updated

• `api-reference/introduction.mdx` — base URLs, auth example, conventions (pagination, idempotency, request IDs, content type, time)
• `es/api-reference/introduction.mdx` — retranslated to match expanded English
• `es/index.mdx` — Spanish CTA row to the new pages
• `index.mdx` — hero CTA row, repointed SDK cards from GitHub to internal pages
• `custom.css` — `.resq-cta-row` and `.resq-cta` styles
• `docs.json` — SDKs tab, concepts slotted into Start here, feedback widget, theme-color matched to background, `/quickstart` redirect removed (page now exists), `/essentials/` and `/ai-tools/` repointed to `/quickstart` instead of `/`

Caveats

• Base URLs (`https://api.resq.software\`, `https://coordination.resq.software\`) are placeholders pending confirmation.
• SDK examples use plain HTTP clients (`fetch` / `httpx` / `reqwest` / `HttpClient`) rather than fabricated SDK method signatures; per-package APIs are documented in their respective READMEs.
• `ar/`, `hi/`, `zh/` locale trees are unchanged — full translations pending.
• i18n nav (`languages` array in `docs.json`) intentionally not added — schema varies by Mintlify version and needs confirmation.
• Commit `246736b` (CI placeholder ruleset gate) appears in this PR's ancestry. It belongs to the parallel `feat/ci-governance-adoption` PR; once that merges, this diff becomes docs-only.

Test plan

• `mintlify dev` renders the new pages without console errors
• Hero CTAs route to `/quickstart`, `/concepts`, `/api-reference/introduction`
• SDK cards on home + quickstart route to `/sdks/*` (no GitHub bounce)
• Confirm placeholder base URLs match production
• Theme-color matches `background.color.dark` in both light and dark modes
• Feedback widget shows thumbs + suggest-edits + raise-issue
• Spanish translation register acceptable to a native reviewer

Summary by CodeRabbit

Release Notes

• Documentation

  • Added comprehensive authentication and error-handling guides with examples
  • Introduced quickstart tutorials for API integration and health checks
  • Published SDK documentation for TypeScript, Python, Rust, and .NET
  • Added architectural concepts documentation covering APIs, data conventions, and HITL workflows
  • Expanded API reference with base URLs, authentication details, and shared conventions
  • Added full Spanish-language documentation suite

• Style

  • Enhanced documentation site styling with improved form controls, tables, and interactive elements
  • Refined light/dark theme token coverage and visual hierarchy

• Chores

  • Added CI workflow configuration

[coderabbitai]

Warning

Rate limit exceeded

@WomB0ComB0 has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 25 minutes and 43 seconds before requesting another review.

To keep reviews running without waiting, you can enable usage-based add-on for your organization. This allows additional reviews beyond the hourly cap. Account admins can enable it under billing.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: a882f058-4470-4e27-877c-b78dd6a92268

📥 Commits

Reviewing files that changed from the base of the PR and between acea2af and c1d3676.

📒 Files selected for processing (19)

• api-reference/introduction.mdx
• authentication.mdx
• concepts.mdx
• custom.css
• docs.json
• errors.mdx
• es/api-reference/introduction.mdx
• es/authentication.mdx
• es/concepts.mdx
• es/errors.mdx
• es/index.mdx
• es/quickstart.mdx
• index.mdx
• quickstart.mdx
• sdks/dotnet.mdx
• sdks/index.mdx
• sdks/python.mdx
• sdks/rust.mdx
• sdks/typescript.mdx

📝 Walkthrough

Walkthrough

Added comprehensive documentation for ResQ Tactical OS platform across API reference, authentication, error handling, SDK guides, and concepts in both English and Spanish; updated Mintlify configuration, styling, and GitHub Actions workflow.

Changes

ResQ Documentation Launch

Layer / File(s)	Summary
Site Configuration & Styling docs.json, custom.css	Mintlify configuration switches to SDK-focused navigation with updated favicon, anchors, SEO/metadata, and logo paths. CSS adds light-theme tokens, form/focus/table styling, and brand utilities (pills, hero, CTA buttons).
Landing & Navigation index.mdx, quickstart.mdx	Replaced boilerplate with ResQ-specific hero, API/SDK cards, and five-step quick-start instructions (health, login, auth, telemetry, SDK selection).
API Foundation api-reference/introduction.mdx, es/api-reference/introduction.mdx	Introduced two HTTPS APIs (Infrastructure/Coordination) with base URLs, bearer-JWT auth pattern, shared conventions (pagination, idempotency, timestamps, content-type), and SDK links in English and Spanish.
Core Guides authentication.mdx, errors.mdx, concepts.mdx, es/authentication.mdx, es/errors.mdx, es/concepts.mdx	Complete JWT workflow, retry/backoff policies, status-code reference, and conceptual architecture (mesh, evidence-IPFS-Solana chain, HITL approval, scopes, telemetry) with parallel Spanish versions.
SDK Documentation sdks/index.mdx, sdks/typescript.mdx, sdks/python.mdx, sdks/rust.mdx, sdks/dotnet.mdx	Language-specific installation, usage examples, error handling, and protocol contract guidance for TypeScript/Effect, Python/httpx, Rust/reqwest, and .NET/HttpClient ecosystems.
Spanish Localization es/index.mdx, es/quickstart.mdx	Landing page and quickstart guide translated and adapted for Spanish-speaking operators, maintaining feature parity with English versions.
CI Integration .github/workflows/required.yml	New placeholder GitHub Actions workflow on push/PR to main/master with per-ref concurrency cancellation.

Sequence Diagram(s)

sequenceDiagram
    participant Operator
    participant ResQ_Infra as ResQ Infrastructure API
    participant ResQ_Coord as ResQ Coordination API
    participant Solana as Solana Blockchain
    
    Operator->>ResQ_Infra: POST /login<br/>(username, password)
    ResQ_Infra-->>Operator: JWT token + expires_at
    
    Operator->>ResQ_Infra: GET /health<br/>(no auth)
    ResQ_Infra-->>Operator: 200 OK
    
    Operator->>ResQ_Infra: GET /evidence<br/>(Authorization: Bearer JWT)
    ResQ_Infra->>Solana: Verify IPFS CID anchor
    Solana-->>ResQ_Infra: CID confirmed
    ResQ_Infra-->>Operator: Evidence data + IPFS metadata
    
    Operator->>ResQ_Coord: GET /events (SSE)<br/>(Authorization: Bearer JWT)
    ResQ_Coord-->>Operator: Real-time telemetry events<br/>(streaming)
    
    Note over Operator: On token expiry,<br/>re-authenticate
    Operator->>ResQ_Infra: POST /login (refresh)
    ResQ_Infra-->>Operator: New JWT token

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~35 minutes

Possibly related PRs

• resq-software/docs#1: Directly related; modifies the same documentation files and configuration (api-reference/introduction.mdx, docs.json, etc.) to establish the documentation site structure.

Poem

🐰 A warren of words, now crystal and clear,
APIs and SDKs that engineers cheer,
From quickstart to concepts, the whole journey laid,
In English and Spanish, no stone left unmade!
With CSS flourishes and hero so bright,
The docs hop along—a delightful sight! ✨

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main changes: adding quickstart, auth, errors, concepts, and SDK documentation pages plus Spanish translations, which aligns with the changeset covering 15+ new/updated documentation files and configuration.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch docs/onboarding-pages

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Code Review

This pull request significantly expands and reorganizes the ResQ documentation, introducing comprehensive guides for authentication, core concepts, and error handling. It includes a major overhaul of the landing page and quickstart guides, supported by updated CSS brand tokens and a new light theme. The PR also adds dedicated documentation for the TypeScript, Python, Rust, and .NET SDKs, along with a complete Spanish translation of the core documentation. Feedback focuses on correcting invalid JSON syntax in authentication examples, improving internal linking for SDK consistency, and refining issue-reporting links to point directly to the documentation repository.

[gemini-code-assist]

The SDK cards in this section link to GitHub repositories. Since new dedicated SDK pages have been created for these languages, it would be more consistent with other parts of the documentation (like the main index.mdx) and provide a better user experience to link to the internal pages instead. This keeps users within the docs site.

<CardGroup cols={2}>
  <Card title="TypeScript" icon="js" href="/sdks/typescript">
    `@resq-sw/http`, `@resq-sw/security`, UI components.
  </Card>
  <Card title="Python" icon="python" href="/sdks/python">
    `resq-mcp` (FastMCP server) and `resq-dsa`.
  </Card>
  <Card title="Rust" icon="rust" href="/sdks/rust">
    Unified `resq` CLI plus seven TUI tools.
  </Card>
  <Card title=".NET" icon="hashtag" href="/sdks/dotnet">
    Typed clients, Protobuf contracts, sim harnesses.
  </Card>
</CardGroup>

[WomB0ComB0]

Fixed in c1d3676 — SDK CardGroup hrefs in api-reference/introduction.mdx now point to /sdks/typescript, /sdks/python, /sdks/rust, /sdks/dotnet (matches the home page convention).

[gemini-code-assist]

The example JSON syntax { "username", "password" } is not valid. While the curl example below is correct, it would be better to show a valid JSON structure here for clarity and correctness.

    `POST /login` with a JSON body like `{"username": "...", "password": "..."}`.

[WomB0ComB0]

Fixed in db9ccc6 — replaced the invalid pseudo-JSON { "username", "password" } with a valid object-literal example {"username": "...", "password": "..."}.

[gemini-code-assist]

The link to report an issue points to the GitHub organization page. It would be more helpful for users if this linked directly to the "new issue" page for the documentation repository, as configured in docs.json.

issue in the [docs repository](https://github.com/resq-software/docs/issues/new?title=Docs%20issue:%20) with:

[WomB0ComB0]

Fixed in db9ccc6 — link now deep-points to https://github.com/resq-software/docs/issues/new?title=Docs%20issue:%20.

[gemini-code-assist]

The example JSON syntax { "username", "password" } is not valid. While the curl example below is correct, it would be better to show a valid JSON structure here for clarity and correctness.

    `POST /login` con un cuerpo JSON como `{"username": "...", "password": "..."}`.

[WomB0ComB0]

Fixed in db9ccc6 — same fix as the English version, in Spanish prose.

[gemini-code-assist]

The link to report an issue points to the GitHub organization page. It would be more helpful for users if this linked directly to the "new issue" page for the documentation repository.

abre una issue en el [repositorio de documentación](https://github.com/resq-software/docs/issues/new?title=Docs%20issue:%20) con:

[WomB0ComB0]

Fixed in db9ccc6 — Spanish equivalent of the issue-link fix.

[gemini-code-assist]

The example command uses ResQ.Client as the package name, but the note below clarifies that this is not the real name and publishing is in flux. This can be confusing. Using a clear placeholder like <package-name> in the command would be less ambiguous for the user.

dotnet add package <package-name>

[WomB0ComB0]

Fixed in db9ccc6 — fabricated package name ResQ.Client replaced with explicit <package-name> placeholder so the example aligns with the surrounding caveat.

[coderabbitai]

Actionable comments posted: 9

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @.github/workflows/required.yml:
- Around line 25-29: The current "required" job defined with a single echo step
is a false-green gate; replace it with an aggregator job named required that
declares explicit needs dependencies on the real CI jobs (e.g., lint, build,
test or their actual job names) and fails if those jobs are missing;
specifically, remove the placeholder run: echo step and add a needs:
[<actual-job-names>] entry plus a simple step that checks the status of those
jobs (or uses if: always() and fails when any required job did not run) so the
job only passes when the dependent CI jobs have completed successfully before
you enable enforcement.

In `@api-reference/introduction.mdx`:
- Around line 128-145: The SDK CardGroup currently links to external GitHub
repos; update each Card's href to point to the internal docs SDK pages instead
(e.g., replace the href on the Card with title "TypeScript", the Card with title
"Python", the Card with title "Rust", and the Card with title ".NET" so they
reference the corresponding internal /sdks/* documentation pages used elsewhere
in the PR). Keep the Card titles and content unchanged, only change the href
attributes to the internal docs routes so the cards navigate to the local SDK
pages.

In `@custom.css`:
- Line 101: Replace the quoted single-word font family 'Syne' with an unquoted
identifier in the font-family declarations that currently read "font-family:
'Syne', system-ui, sans-serif;": remove the single quotes around Syne in both
occurrences so the property becomes font-family: Syne, system-ui, sans-serif; to
satisfy the Stylelint font-family-name-quotes rule.
- Line 23: The `@import` rule using url(...) violates the Stylelint
import-notation rule; replace the url(...) notation with a bare string for the
`@import` statement (i.e., change the `@import` line that uses
url('https://fonts.googleapis.com/...') to use a plain string import: `@import`
'https://fonts.googleapis.com/...';) so Stylelint accepts the import-notation.
- Around line 336-349: The .resq-cta rule uses border-radius: 0.5rem (8px) but
the brand guide requires a 6px radius for buttons; update the .resq-cta selector
to use a 6px radius (e.g., border-radius: 6px or 0.375rem) so buttons comply
with the "Use 6px radius for cards, inputs, buttons, and panels" guideline,
leaving all other properties unchanged.
- Around line 222-223: The CSS uses the keyword "currentColor" with uppercase C
which violates the stylelint value-keyword-case rule; update the background and
box-shadow declarations to use the lowercase keyword "currentcolor" (i.e.,
adjust the background property and the color-mix argument inside box-shadow) so
both occurrences match the required lowercase keyword.

In `@docs.json`:
- Around line 153-162: The suggestEdits.url in docs.json currently contains a
literal "{filename}" placeholder which Mintlify does not support; update the
suggestEdits object by removing the "{filename}" placeholder and setting url to
the correct base edit URL (e.g., the repository's edit URL without any template
variable) or omit the url to let Mintlify generate edit links client-side;
locate the suggestEdits.url key in docs.json and replace the value so it no
longer contains "{filename}".

In `@sdks/rust.mdx`:
- Around line 62-69: The Cargo.toml snippet is missing the anyhow crate required
by the main function's return type (anyhow::Result<()>), and it also contains a
wildcard version for resq-dsa which is unsafe; update the [dependencies] block
to add anyhow = "1" (or an appropriate pinned version) so anyhow::Result
resolves, and replace resq-dsa = "*" with a concrete version string (e.g., "0.x"
or the repository's recommended semver) to avoid wildcard dependency resolution;
check references in main and any functions that use anyhow::Result or
anyhow::Error to ensure the chosen version is compatible.

In `@sdks/typescript.mdx`:
- Around line 81-85: The example that assigns to evidence calls
fetch(...).then((r) => r.json()) without checking response status, so HTTP
errors (e.g., 401) get parsed as JSON and hidden; update the fetch usage to
check r.ok (or r.status) before parsing: after fetch, if (!r.ok) throw a
descriptive Error including r.status and await r.text() or r.statusText to
surface the server error, otherwise return r.json(); keep the variable name
evidence and the same fetch call but add the r.ok check and throw to mirror the
/login pattern.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: ecd2ac21-a313-41c2-9406-132d8187055d

📥 Commits

Reviewing files that changed from the base of the PR and between c263ff8 and acea2af.

📒 Files selected for processing (20)

• .github/workflows/required.yml
• api-reference/introduction.mdx
• authentication.mdx
• concepts.mdx
• custom.css
• docs.json
• errors.mdx
• es/api-reference/introduction.mdx
• es/authentication.mdx
• es/concepts.mdx
• es/errors.mdx
• es/index.mdx
• es/quickstart.mdx
• index.mdx
• quickstart.mdx
• sdks/dotnet.mdx
• sdks/index.mdx
• sdks/python.mdx
• sdks/rust.mdx
• sdks/typescript.mdx